This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3f0c29-f112-4d0a-bc24-66cd55fee3f9/1/2bIoEd-GEj1xr1uZiiEMI-sdXvo.mft File: 2bIoEd-GEj1xr1uZiiEMI-sdXvo.mft (raw, json) Hash identifier: aUHJkpaNw0KXDRwrNNK4/n4d99kd+y+wGVZx2suS1H4= Subject key identifier: CF:DF:10:F1:CE:9F:7D:96:9C:38:8B:24:A2:BF:07:DC:3A:EE:95:F0 Authority key identifier: D9:B2:28:11:DF:86:12:3D:71:AF:5B:99:8A:21:0C:23:EB:1D:5E:FA Certificate issuer: /CN=d9b22811df86123d71af5b998a210c23eb1d5efa Certificate serial: 019A9C358AD81219F86EA1870ACA95C91ADE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2bIoEd-GEj1xr1uZiiEMI-sdXvo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3f0c29-f112-4d0a-bc24-66cd55fee3f9/1/2bIoEd-GEj1xr1uZiiEMI-sdXvo.mft Manifest number: 1072 Signing time: Wed 19 Nov 2025 13:02:25 +0000 Manifest this update: Wed 19 Nov 2025 13:02:25 +0000 Manifest next update: Thu 20 Nov 2025 13:02:25 +0000 Files and hashes: 1: 2bIoEd-GEj1xr1uZiiEMI-sdXvo.crl (hash: MAUJBnDvn/LeVrQCL7DjKLVoYmv6R3mL+c6sEN1Mae0=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9c:35:8a:d8:12:19:f8:6e:a1:87:0a:ca:95:c9:1a:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9b22811df86123d71af5b998a210c23eb1d5efa Validity Not Before: Nov 19 13:02:25 2025 GMT Not After : Nov 20 13:02:25 2025 GMT Subject: CN=cfdf10f1ce9f7d969c388b24a2bf07dc3aee95f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:82:2b:15:9b:df:0a:b0:49:37:96:9f:fd:d0: e9:40:2a:20:5d:95:b5:f5:a1:1e:9a:8f:37:25:7f: 5c:20:0a:1e:ac:61:c8:bd:df:04:0a:5f:e9:a1:39: 68:6b:89:4e:0f:24:3f:a5:10:e5:f4:2a:97:07:ca: 7a:f7:a0:a8:ee:b7:9b:d5:3b:eb:c9:7d:11:3e:e7: 9b:6c:e3:5e:6a:6c:14:4c:80:05:c2:1c:cc:2f:13: 49:97:c1:75:be:f6:28:62:2d:43:7b:b9:3b:94:19: 62:cb:35:1e:9f:fb:f8:84:b5:76:8c:85:27:79:5b: 80:85:6b:de:06:8c:cf:ad:6b:d5:0c:4a:3c:f9:d5: 21:ca:da:f1:7a:46:10:c3:22:4c:df:78:e4:87:ea: c4:cd:e5:3a:3c:5b:3a:0b:fe:88:2c:01:e9:41:18: 52:c6:a4:9f:3f:34:bf:5c:58:23:8f:8a:5c:4f:03: b9:de:2e:83:14:89:e0:2b:59:3b:93:42:2a:42:0e: 41:17:81:c4:8b:f7:c4:40:c7:d3:99:2f:69:37:3b: eb:11:7a:63:ee:f9:15:2c:a0:b7:89:d5:1b:c3:83: 0d:e3:d8:82:cc:9c:51:16:24:eb:27:9f:69:69:c8: d7:f1:34:5c:62:69:90:52:b6:cf:d4:60:0c:dc:66: 4d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:DF:10:F1:CE:9F:7D:96:9C:38:8B:24:A2:BF:07:DC:3A:EE:95:F0 X509v3 Authority Key Identifier: keyid:D9:B2:28:11:DF:86:12:3D:71:AF:5B:99:8A:21:0C:23:EB:1D:5E:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2bIoEd-GEj1xr1uZiiEMI-sdXvo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3f0c29-f112-4d0a-bc24-66cd55fee3f9/1/2bIoEd-GEj1xr1uZiiEMI-sdXvo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3f0c29-f112-4d0a-bc24-66cd55fee3f9/1/2bIoEd-GEj1xr1uZiiEMI-sdXvo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:de:25:cb:e9:26:35:7d:fb:5b:96:64:e7:c8:69:a9:34:c3: f9:82:e0:04:8c:d9:88:0f:7d:49:0b:c5:9a:42:1a:86:3e:6b: e7:52:40:3c:96:32:30:ec:11:2c:28:c9:88:56:29:60:86:3a: eb:2d:f4:5b:53:f7:41:ce:06:ea:f6:1b:9e:14:ef:df:1c:bd: 0d:39:06:04:28:29:4c:85:fb:32:1b:bd:b3:3c:b3:70:39:c9: ec:25:cf:5a:f6:77:d7:97:db:ce:4a:fd:8d:50:b0:a2:8a:aa: 9c:2c:41:1d:59:22:20:60:5f:c3:fc:6b:99:54:c2:22:72:2e: d2:4c:bc:3f:97:e4:bb:6b:47:7b:88:91:0a:a8:53:43:53:43: 74:01:4e:d4:c9:f8:18:89:af:ad:2c:08:7b:79:12:72:ab:66: 67:f3:13:19:4f:8f:a1:17:f5:5e:e8:cc:24:9a:9d:8c:c9:a2: f8:d4:1f:90:36:5e:73:13:83:4d:94:95:6c:29:9c:12:fc:fb: ee:3a:88:d9:de:1a:ea:26:f3:8e:0d:c9:e3:0d:05:db:e9:d2: b4:12:7e:3d:82:00:9e:dd:dd:06:e0:a3:a8:16:28:e8:ca:37: e1:e1:3d:5f:19:4c:9f:f8:13:ca:2a:18:64:79:10:b9:8e:1e: a6:40:e3:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqcNYrYEhn4bqGHCsqVyRreMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5YjIyODExZGY4NjEyM2Q3MWFmNWI5OThhMjEwYzIzZWIx ZDVlZmEwHhcNMjUxMTE5MTMwMjI1WhcNMjUxMTIwMTMwMjI1WjAzMTEwLwYDVQQD EyhjZmRmMTBmMWNlOWY3ZDk2OWMzODhiMjRhMmJmMDdkYzNhZWU5NWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIIrFZvfCrBJN5af/dDpQCogXZW1 9aEemo83JX9cIAoerGHIvd8ECl/poTloa4lODyQ/pRDl9CqXB8p696Co7reb1Tvr yX0RPuebbONeamwUTIAFwhzMLxNJl8F1vvYoYi1De7k7lBliyzUen/v4hLV2jIUn eVuAhWveBozPrWvVDEo8+dUhytrxekYQwyJM33jkh+rEzeU6PFs6C/6ILAHpQRhS xqSfPzS/XFgjj4pcTwO53i6DFIngK1k7k0IqQg5BF4HEi/fEQMfTmS9pNzvrEXpj 7vkVLKC3idUbw4MN49iCzJxRFiTrJ59pacjX8TRcYmmQUrbP1GAM3GZNbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM/fEPHOn32WnDiLJKK/B9w67pXwMB8GA1UdIwQY MBaAFNmyKBHfhhI9ca9bmYohDCPrHV76MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmJJb0VkLUdFajF4cjF1WmlpRU1JLXNkWHZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8zZjBjMjktZjExMi00ZDBhLWJjMjQt NjZjZDU1ZmVlM2Y5LzEvMmJJb0VkLUdFajF4cjF1WmlpRU1JLXNkWHZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC8zZjBjMjktZjExMi00ZDBhLWJjMjQtNjZjZDU1ZmVlM2Y5 LzEvMmJJb0VkLUdFajF4cjF1WmlpRU1JLXNkWHZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUN4ly+km NX37W5Zk58hpqTTD+YLgBIzZiA99SQvFmkIahj5r51JAPJYyMOwRLCjJiFYpYIY6 6y30W1P3Qc4G6vYbnhTv3xy9DTkGBCgpTIX7Mhu9szyzcDnJ7CXPWvZ315fbzkr9 jVCwooqqnCxBHVkiIGBfw/xrmVTCInIu0ky8P5fku2tHe4iRCqhTQ1NDdAFO1Mn4 GImvrSwIe3kScqtmZ/MTGU+PoRf1XujMJJqdjMmi+NQfkDZecxODTZSVbCmcEvz7 7jqI2d4a6ibzjg3J4w0F2+nStBJ+PYIAnt3dBuCjqBYo6Mo34eE9XxlMn/gTyioY ZHkQuY4epkDj9g== -----END CERTIFICATE-----Generated at Fri Dec 19 11:16:50 2025 by rpki-client